OpenVPN Site-to-Site versus Remote Access
-
Hi,
Is there any difference between a OpenVPN setup for site-to-site, versus a remote-access one?
(I've always found setting up a VPN incredibly tricky).
For example, there's an in-built wizard for OpenVPN Remote Access - if I follow this through, can I also use this for site-to-site?
Regards,
Victor -
The GUI provides some adapted setup options for the different server modes.
In access mode it allows to provide DNS, NTP and NetBIOS, while in site-to-site you can set the remote network to enable OpenVPN to set the route.
-
Hi,
Does this mean I should setup two different OpenVPN setups - one for remote access, and one for site-to-site?
Or is it possible to have one double-up for both?
(Out of the services you mentioned for access mode - I think DNS is the only one we might need, and not even necessarily - for access mode, the main use case is to access the web interface on certain devices for managing them - e.g. printers, or SSH into certain devices - happy to go in via IP address if that makes the VPN setup easier).
Regards,
Victor -
You may also do both with an access server. Look here: https://doc.pfsense.org/index.php/OpenVPN_multi_purpose_single_server
The routing for the site-to-site can be set by client specific override.